HIPAA Security Reminder of the Week

Phishing Emails and Links

Please be on the lookout for phishing emails or pages with links that try to convince you to click on a link or divulge any personal information. Phishing emails look like emails from a legitimate source but the content requests information that the actual company would not request.

Malware filters may be in place on the email server but it is often hard for a system to distinguish between what’s real and what’s a scam. For example, if the email asks you to send your SSN, date of birth, and other identifying information, DON’T DO IT. If someone really wants to send you a large sum of money, they will almost certainly do it by certified mail, not by email.

To paraphrase an old saying, if it sounds too good to be true, it is probably a scam. You will NEVER be asked by any legitimate source to divulge your SSN or other personally identifiable information over email. If you are, you should never do it.

Phishing emails will continue to make their way through the many layers of security. It’s up to you to be diligent and discerning – do not open any suspicious email and contact your IT Help desk and Information Security Officer if you think you may have accidentally clicked on a malicious link. (And disconnect your computer from the network to prevent further damage).